The Family Atelier logo with a stylized stained glass window motif.

PRIVACY & COOKIE POLICY

Last updated: 25/11/2025

1. Introduction

At The Family Atelier S.R.L. (“we”, “us”, “our”), we handle your personal data with the same care and professionalism that guide our bespoke services for families and corporate clients.

This combined Privacy & Cookie Policy explains:

  • what personal data we collect

  • how and why we process it

  • the types of cookies we use

  • legal bases for processing

  • how long we keep your data

  • your rights under the GDPR

  • how to manage cookie preferences

  • whom to contact for privacy matters

By using www.thefamilyatelier.com, you acknowledge that you have read and understood this Policy.

2. Definitions

  • “Personal Data”: any information relating to an identified or identifiable individual.

  • “Processing”: any operation performed on personal data (collection, storage, use, disclosure, deletion).

  • “Controller”: the entity determining the purposes and means of processing personal data.

  • “Processor”: a service provider processing data on behalf of the Controller.

  • “EU/EEA”: European Union and European Economic Area.

  • “Cookies”: small text files stored on your device when you visit a website.

3. Data Controller

The Family Atelier S.R.L.
Email: info@thefamilyatelier.com
PEC: thefamilyatelier@pec.it

4. Personal Data We Collect

We collect data in three ways: data you provide, data collected automatically, and data we receive from third parties.

4.1 Data you provide voluntarily

  • Name and surname

  • Email address

  • Phone number

  • Country of residence

  • Corporate details (where relevant)

  • Family information shared voluntarily

  • Messages, inquiries, service requests

  • Information included in forms or attachments

4.2 Data collected automatically

When you browse our website, we may collect:

  • IP address (anonymised where applicable)

  • Browser and device information

  • Operating system

  • Pages visited and browsing behaviour

  • Approximate geographical location

  • Cookies and similar technologies (see Section 10)

Analytics tools (e.g., Google Analytics) are activated only after cookie consent.

4.3 Data from third parties

  • Atelier Circle partners (with your explicit consent)

  • Social media interactions

  • Referral links

5. Purposes of Processing

We process personal data exclusively for legitimate purposes.

5.1 Service Delivery

  • Responding to inquiries

  • Preparing tailored proposals

  • Providing concierge, relocation, and lifestyle services

  • Coordinating services with selected partners

5.2 Administrative & Legal Compliance

  • Client management

  • Accounting and invoicing

  • Compliance with applicable laws

5.3 Marketing Communications

  • Sending newsletters or updates

  • Sharing service-related communications

Marketing is performed only after explicit consent.

5.4 Website Performance & Analytics

  • Understanding usage patterns

  • Improving content and user experience

Activated only after cookie consent.

6. Legal Bases for Processing

We rely on one or more of the following legal bases:

  • Consent — marketing, analytics, optional cookies

  • Performance of a contract — service provisioning

  • Legal obligation — accounting, taxation, compliance

  • Legitimate interest — website security, fraud prevention, UX optimisation

7. Data Sharing

We do not sell personal data.
We may share data only with:

7.1 Processors (Service Providers)

  • Squarespace, Inc. – website hosting

  • Zoho Mail – email services

  • Google LLC – analytics (only after consent)

  • IT, administrative, or security providers as needed

All providers operate under GDPR-compliant agreements.

7.2 Atelier Circle Partners

Shared only with your explicit consent to deliver specific services.

7.3 Public Authorities

Only when legally required.

8. International Transfers

Some processors (e.g., Google, Squarespace, Zoho) may store data outside the EU.

We rely on:

  • Standard Contractual Clauses (SCCs – 2021 version)

  • Additional technical and organisational safeguards

  • GDPR-compliant Data Processing Agreements

9. Data Retention

We retain data only for the time necessary to fulfil the purposes described, including:

  • service delivery

  • accounting and tax obligations

  • fraud prevention

  • dispute management

Retention typically ranges from 1 to 7 years, depending on legal and operational needs.

10. Cookies and Similar Technologies

Our website uses cookies to ensure proper functionality, enhance performance, and, with your consent, analyse usage patterns.

10.1 Types of Cookies We Use

Essential Cookies (Always Active)

Required for core functionalities, such as:

  • navigation

  • security

  • cookie preference storage

  • website stability (Squarespace cookies)

These do not require consent.

Functional Cookies (Optional)

Improve user experience, e.g.:

  • remembering form inputs

  • preference settings

Activated only with explicit consent.

Analytics Cookies (Optional)

Help us understand how visitors use the website.

Google Analytics loads only with consent and includes:

  • anonymised IP

  • limited data sharing

  • restricted retention

Marketing Cookies (Optional)

We currently do not use marketing or advertising cookies.

If this changes, this Policy will be updated.

10.2 Cookies Used on Our Website

Squarespace Essential Cookies

Examples include:

  • ss_cid

  • ss_cvisit

  • ss_cvr

  • ss_cvt

  • ss_cookieAllowed

  • ss_cpvisit

Google Analytics (Optional)

Loaded only after consent:

  • _ga

  • _gid

  • _gat

10.3 Managing Your Cookie Preferences

At any time, you may:

  • Accept all cookies

  • Decline all non-essential cookies

  • Customise your preferences

  • Withdraw consent via the banner

You may also adjust browser settings or delete cookies manually.

Declining non-essential cookies does not affect core functionality.

11. Children’s Data

Our services are not directed to children under 16.
We do not knowingly process children’s data without parental consent.

If you believe a minor has provided personal data, contact us for immediate deletion.

12. Your Rights Under GDPR

You may exercise the following rights:

  • Access your data

  • Rectify inaccurate data

  • Request deletion

  • Restrict processing

  • Object to processing

  • Data portability

  • Withdraw consent at any time

To exercise your rights:
hello@thefamilyatelier.com

You may also lodge a complaint with the Italian Data Protection Authority:
https://www.garanteprivacy.it

13. Security Measures

We apply industry-standard technical and organisational measures, including:

  • HTTPS encryption

  • Secure hosting

  • Access control

  • Monitoring and fraud-prevention systems

No digital system can guarantee absolute security, but we continuously strengthen our protections.

14. Third-Party Links

Links to third-party websites (e.g., Instagram, LinkedIn) are provided for convenience.
We are not responsible for their privacy practices.

15. Changes to This Unified Policy

We may update this Policy to reflect:

  • regulatory changes

  • operational updates

  • modifications to the cookies we use

  • service enhancements

The latest version is always available on this page.

16. Contact

For questions or privacy-related requests:

Email: info@thefamilyatelier.com
PEC: thefamilyatelier@pec.it